Collibra Agent Path Traversal Vulnerability in Restore Handler Allows Arbitrary File Writing

A path traversal vulnerability has been identified in the restore handler of Collibra Agent, which is part of the Collibra Platform and Collibra Platform Self-Hosted. This vulnerability allows remote, unauthenticated attackers to write arbitrary files by uploading a crafted ZIP archive. The issue arises because Collibra Agent does not properly validate or canonicalize file paths during ZIP extraction, enabling attackers to write files outside the designated extraction directory.

Impact

Exploitation of this vulnerability allows for arbitrary file writing, which can be leveraged to execute malicious code on the server. In a reported exploitation scenario, an attacker could place a harmful JSP file in a directory accessible via the web, leading to remote code execution when the file is accessed.

Remediation

Users are advised to update to Collibra Platform versions 2026.05, 2026.04.5, 2026.03.4, 2026.02.6, 2025.11.7, or 2025.10.9. For Collibra Platform Self-Hosted, the recommended versions are 2026.03 (Build 2026.03.356) or 2025.10 (Build 2025.10.399). Consult the Collibra documentation and release notes for guidance on patching and deployment.